This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Community FAQ
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

SWAPGS Report

brodiemac
Engaged Sweeper III

‎08-07-2019 04:34 PM

I got the email about the audit report for this provided by LANSweeper. I copied the code and ran the report but it is all wrong. It shows most of my environment being vulnerable but when researching the vulnerabilities and checking machines marked as vulnerable, they all had the required patches. Anyone else seeing this?
Labels:
0 Kudos
4 REPLIES 4
bginchereau
Engaged Sweeper

‎08-12-2019 03:25 PM

brodiemac wrote:
I got the email about the audit report for this provided by LANSweeper. I copied the code and ran the report but it is all wrong. It shows most of my environment being vulnerable but when researching the vulnerabilities and checking machines marked as vulnerable, they all had the required patches. Anyone else seeing this?


The search criteria for the report does not include the all inclusive patches that have been put out.

EX: Win 10 build 1709 - the report looks for KB4507455, but patch KB4507465 REPLACED the previous but still includes the fix. The report shows the machine as out of date due to not looking for the updated patch.

You could go back through the report code and add these new patches, but it would be a lot easier with an update report.
0 Kudos
Esben_D
Lansweeper Employee
Lansweeper Employee

‎08-08-2019 01:34 PM

Have you checked whether the report lists assets with outdated data (look in the comments column)?
Might be best to just hit the rescan assets button in the report, just to be safe.

The data itself is taken from the Win32_QuickFixEngineering WMI class.

To check you can run get-wmiobject Win32_QuickFixEngineering in PowerShell
0 Kudos
Lennart
Engaged Sweeper III

‎08-08-2019 07:47 AM

I'm getting several clients marked as missing KB4507453 regarding to the report.
But they are updated to max, and can´t find any more windows updates.
I´m not using WSUS.
Any ideas?
/BR Lennart
0 Kudos
brodiemac
Engaged Sweeper III

‎08-07-2019 05:37 PM

So I'm guessing LANSweeper uses the Get-HotFix Powershell command to get the hotfix information as the result of that command matches what is listed for these computers. Since we are using WSUS, there are several that are not listed using this command. I found this article that explains an alternate method of listing hotfixes installed this way. How would I go about integrating this command into LANSweeper to list installed hotfixes from WSUS?
0 Kudos

New to Lansweeper?

Try Lansweeper For Free

Experience Lansweeper with your own data.
Sign up now for a 14-day free trial.

Try Now